| VID |
28212 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
A version of RealPlayer which is older than version 6.0.12.1662 has been installed on the host. RealOne / RealPlayer is one of the most widely used products for internet media delivery for Microsoft Windows platforms and most Linux and Unix-based operating systems. RealNetworks RealPlayer / RealOne Player / RealPlayer Enterprise are vulnerable to multiple buffer overflow vulnerabilities. By sending a specially-crafted media file (eg, '.mp3', '.rm', '.SMIL', '.swf', '.ram', or '.pls') and persuading the user to open the file, the attacker could overflow a buffer and execute arbitrary code on the system with the permissions of the user running the affected application.
* Note: This check requires an account with Guest or upper privileges which can access the registry of the remote host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://service.real.com/realplayer/security/10252007_player/en/
http://www.securityfocus.com/archive/1/482855/30/0/threaded
http://www.securityfocus.com/archive/1/482856/30/0/threaded
http://www.securityfocus.com/archive/1/482942/30/0/threaded
http://www.kb.cert.org/vuls/id/770904
http://www.frsirt.com/english/advisories/2007/2339
http://www.frsirt.com/english/advisories/2007/3628
http://securitytracker.com/alerts/2007/Jun/1018297.html
http://securitytracker.com/alerts/2007/Jun/1018299.html
http://securitytracker.com/alerts/2007/Oct/1018866.html
http://secunia.com/advisories/25819
http://secunia.com/advisories/27361
* Platforms Affected:
RealNetworks, RealOne Player v1, v2
RealNetworks, RealPlayer 10
RealNetworks, RealPlayer 8
RealNetworks, RealPlayer 10.5 (6.0.x prior to 6.0.12.1662)
RealNetworks, RealPlayer Enterprise Any version
RealNetworks, Helix Player 10.0.5 - 10.0.8
Microsoft Windows Any version
Linux Any version
Apple Mac OS Any version |
| Recommendation |
For RealPlayer:
Upgrade to the latest version of RealPlayer, available from the RealNetwork Web site at http://www.real.com/realplayer.html
For Helix Player:
Apply the update for this vulnerability, available from the Helix Player Community Download Web page at https://player.helixcommunity.org/downloads/
For other distributions:
Contact your vendor for upgrade or patch information. |
| Related URL |
CVE-2007-2263,CVE-2007-2264,CVE-2007-3410,CVE-2007-4599,CVE-2007-5080,CVE-2007-5081 (CVE) |
| Related URL |
24658,26214,26284 (SecurityFocus) |
| Related URL |
35088,37434,37435,37436,37437,37438 (ISS) |
|
